With the United Kingdom’s exit from the European Union now confirmed, this new Special Report provides a practical explanation of data protection laws as they will exist in a post-EU environment. GDPR will continue, and will be known as UK GDPR, reinforced by additional legislation specific to UK circumstances.
Data Protection and the New UK GDPR Landscape takes the reader through the key principles of data protection law and explores the scope of UK legislation and how to assure compliance with the law. Also featured are important recent developments including the Morrisons data breach case and the ECJ judgment on data transfers under the US/UK Privacy Shield.
Chapters will cover:
- a brief history of UK data protection law
- understanding terminology and how it is used
- the key data protection principles
- what it means to be a data controller or data processor
- transparency – how to draft privacy policies
- what is special about ‘special category data’?
- children’s data – duties reflecting the position of children
- international data transfers – the new UK approach
- information governance – what the law expects
- managing subject access rights
- artificial intelligence and data protection – the tension between innovation and privacy
- the likely future pathway for data protection in the UK
Each topic is illustrated with case studies and references to relevant case law.
This Special Report will be of interest to in-house counsel and individuals responsible for personal data management and governance, including data protection officers and anyone with responsibility for data systems and infrastructure at a senior level.